New Mac malware ambushing developers via a copycat npm package
Researchers discovered an offbeat malware sample arriving at Mac and Linux machines through a booby-trapped package on npm software hosting service.
XXI century cybercrime stats and what to expect in the 2020s
Get insights into the noteworthy cybercrime statistics for the XXI century and find out how the global threat landscape will change in the 2020s.
New XcodeSpy malware injects sneaky EggShell backdoor into Macs
Researchers unveiled a trojanized version of the Xcode development kit dubbed XcodeSpy that gives attackers broad backdoor access to infected Mac machines.
Apple fixes an arbitrary code execution flaw in Safari
In a series of updates tailor-made for its different platforms, Apple has rolled out important security fixes that address a serious Safari vulnerability.
Side effects of Apple’s security philosophy
The rigid control of software and hardware in Apple devices is both an obstacle to exploitation and a way for high-profile threat actors to persevere inside.
Apple publishes annual update of its Platform Security documentation
The refreshed security round-up highlights Mac M1 architecture defenses, tweaks in biometrics, safe app usage practices, and more.
Google fixes an actively exploited zero-day bug in Chrome
A recent Chrome update takes care of a high-risk flaw that could have been weaponized by North Korean threat actors in attacks against security researchers.
Apple patches more than 60 macOS vulnerabilities in one fell swoop
The latest security updates for macOS Big Sur, Catalina, and Mojave address dozens of loopholes in multiple services, including Safari, Kernel, and WebKit.
Adware remains the largest blot in the Mac threat landscape
According to recent findings of security professionals, Mac malware operators continue to cash in on adware attacks that hinge on human error.
macOS 11.2 will stop Apple’s apps from circumventing third-party firewalls and VPNs
Apple pulls the plug on a macOS Big Sur feature that gave its proprietary services the green light to get around third-party security and privacy tools.